Info

Disclosure

Jan 26, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Cisco VPN Conentrator 3000 contains a flaw that may allow a remote denial of service. The issue is triggered when a specially crafted HTTP packet is sent to the service, which will lead to the device being rebooted. This will result in loss of availability for the platform.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability
Solution: Upgrade
Exploit: Exploit Unknown
Disclosure: OSVDB Verified, Vendor Verified

Solution

Cisco recommends customers upgrade to version 4.7.2.B or higher to fix this vulnerability. However, additional testing by Eldon Sprickerhoff indicates this firmware revision is vulnerable as well. As a workaround, administrators can disable the HTTP service, which is enabled by default.

Products

Cisco Systems, Inc.	VPN Concentrator 3000 series	4.7.0
		4.7.2.A

References

Security Tracker: 1015546
Bugtraq ID: 16394
Secunia Advisory ID: 18629
CVE ID: 2006-0483 (see also: NVD)
SCIP VulDB ID: 2017
ISS X-Force ID: 24330
VUPEN Advisory: ADV-2006-0346
Keyword: cisco-sa-20060126-vpn
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0426.html
http://archives.neohapsis.com/archives/vulnwatch/2006-q1/0039.html
Vendor Specific Advisory URL: http://www.cisco.com/warp/public/707/cisco-sa-20060126-vpn.shtml
Other Advisory URL: http://www.esentire.com/news/vuln-cisco-vpn.html
http://www.securiteam.com/securitynews/5BP010AHPO.html

Credit

Eldon Sprickerhoff - eldonseSentire.com - eSentire, Inc

Direct URL: http://osvdb.org/22754

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Cisco Systems, Inc.

VPN Concentrator 3000 series

References

Credit